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11. A security server that operates to conditionally enable establishment of a 

2 secure interprocess communications session between designated application 

3 program instances, said security server comprising: 

4 a) a policy database storing a plurality of policy rules that collectively 

5 define the mutual authentication and authorization requirements for establishing 

6 a interprocess communications session between first and second application 

7 instances; and 

8 b) a security controller interoperative with an operating system that 

9 includes an application call interface operative to enable establishment of said 

10 interprocess communications session, said security controller being operative to 

1 1 receive predetermined authentication and authorization information from said 

12 operating system in connection with a predetermined application call request to 

1 3 establish said interprocess communications session, said security controller being 

14 further operative to evaluate said predetermined application call request and said 

1 5 predetermined authentication and authorization information against said plurality 

16 of policy rules to conditionally permit the establishment of said interprocess 

17 communications session with respect to said first and second application 

18 instances. 

1 2. The security server of Claim 1 wherein said security controller is operative 

2 to establish a session key that defines a unique encryption of communications 

3 data transferred through said communications session between said first and 

4 second application instances. 
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1 3. The security server of Claim 2 wherein said security controller is operative 

2 to evaluate said predetermined application call request and said predetermined 

3 authentication and authorization information against said plurality of policy rules 

4 to selectively control establishment of said session key with respect to said first and 

5 second application instances. 

1 4. The security server of Claim 3 wherein said security controller is operative 

2 to provide said session key to said operating system to enable said unique 

3 encryption communications data. 

1 5. The security server of Claim 4 wherein said first and second application 

2 instances are executed on a common host computer system. 

1 6. The security server of Claim 1 wherein wherein said security server is 

2 coupleable to said operating system through a network communications 

3 connection. 

1 7. An interprocess communications security system enabling secure 

2 communications sessions to be established between designated application 

3 instances, said interprocess communications security system comprising: 

4 a) a first computer system coupleable to a communications network, 

5 wherein said first computer system includes a first operating system operative to 

6 support execution of a first application instance by said first computer system, said 

7 first operating system including a first policy enforcement module operative to 
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8 qualify predetermined communications calls made between said first application 

9 instance and said first operating system; 

10 b) a second computer system coupleable to a communications 

1 1 network, wherein said second computer system includes a second operating 

12 system operative to support execution of a second application instance by said 

1 3 second computer system, said second operating system including a second policy 

14 enforcement module operative to qualify predetermined communications calls 

15 made between said second application instance and said second operating 

16 system; and 

17 c) a security appliance coupleable to said first and second computer 

18 systems through said communications network, said security appliance being 

1 9 interoperable with said first and second policy enforcement modules to mutually 

20 authenticate said first and second application instances to conditionally conduct 

21 interprocess communications. 

1 8. The interprocess communications security system of Claim 7 wherein said 

2 security appliance is further interoperable with said first and second policy 

3 enforcement modules to enable encryption processing of interprocess 

4 communications exchanged between said first and second application instances. 

1 9. The interprocess communications security system of Claim 8 wherein said 

2 security appliance is operative to determine an encryption token with respect to 

3 the mutual authentication of said first and second application instances, to 

4 provide said encryption token to said first and second policy enforcement modules 
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5 for use in encrypting processing of interprocess communicotions exchonged 

6 between said first and second application instances. 

1 1 0. The interprocess communications security system of Claim 9 wherein said 

2 security appliance includes a policy database storing a plurality of policy rules and 

3 a control program operative to evaluate said plurality of policy rules, wherein said 

4 first and second policy enforcement modules are operative to provide said security 

5 appliance with predetermined information associated with said first and second 

6 application instances in connection with a predetermined communications call 

7 request by said first application instance to establish interprocess communications 

8 with said second application instance, and wherein said security appliance 

9 conditionally enables establishment of an interprocess communications session 

10 between said first and second application programs in response to said 

1 1 predetermined communications call request dependent on an evaluation of said 

12 plurality of policy rules with respect to said predetermined information. 

1 11. The interprocess communications security system of Claim 1 0 wherein said 

2 predetermined information includes a secure identification of said first and second 

3 application instances and wherein said secure identification is used to mutually 

4 authenticate said first and second application instances. 

1 12. The interprocess communications security system of Claim 1 1 wherein said 

2 security appliance includes a signature database storing a plurality of secure 

3 signatures, wherein said predetermined information includes secure signatures for 

4 said first and second application instances, and wherein said security appliance 
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5 is operative to compare the secure signatures of said first and second application 

6 instances to said plurality of secure signatures. 

1 13. An interprocess communications security system enabling secure trust 

2 relationships to be established at any level down to the level of individual 

3 application instances as executed on respective host computer systems 

4 interconnected by a communications network, said system comprising: 

5 a) a first host computer operative to support execution of a first application 

6 instance within a first predefined process context; 

7 b) a second host computer system operative to support execution of a 

8 second application instance in a second predefined process context; 

9 c) control means, provided with respect to said first and second host 

10 computer systems, for establishing communications channels between said first 

1 1 and second host computer systems including a predetermined communications 

12 channel conducting communications between said first and second predefined 

13 process contexts, said control means being responsive to predetermined 

14 information identified with said first and second predefined process contexts to 

1 5 determine a session encryption key for use exclusively in encryption processing of 

1 6 communications conducted through said predetermined communications channel. 

1 14. The interprocess communications security system of Claim 1 3 wherein said 

2 predetermined information identified with said first and second predefined process 

3 contexts includes secure identifications of said first and second application 

4 instances. 
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1 1 5. The interprocess communications security system of Claim 1 4 wherein said 

2 control means provides for a policy-based evaluation of said predetermined 

3 information identified with said first and second process contexts. 

1 1 6. The interprocess communications security system of Claim 1 5 wherein said 

2 first and second predefined process contexts are established on said first and 

3 second computer systems by first and second operating systems and wherein said 

4 control means includes policy enforcement means implemented in combination 

5 with said first and second operating systems to conditionally enable establishment 

6 of said predetermined communications channel subject to said policy-based 

7 evaluation. 

1 17. The interprocess communications security system of Claim 1 6 wherein said 

2 control means includes a security server computer system operable to receive said 

3 predetermined information, to perform said policy-based evaluation, and to 

4 control said policy enforcement means in conditionally enabling establishment of 

5 said predetermined communications channel. 

1 1 8. The interprocess communications security system of Claim 1 7 wherein said 

2 security server computer system determines said session encryption key. 
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1 1 9. The interprocess communications security system of Claim 1 8 wherein said 

2 session encryption key is provided to said policy enforcement means to perform 

3 encryption processing for communications conducted between said first and 

4 second process contexts. 

1 20. A method of binding application execution contexts on network connected 

2 computer systems through a secure communications channel, said method 

3 comprising the steps of: 

4 a) first enabling execution of a first application instance on a first computer 

5 system dependent on a first security assessment of a first application context within 

6 which said first application instance is executable; 

7 b) second enabling execution of a second application instance on a second 

8 computer system dependent on a second security assessment of a second 

9 application context within which said second application instance is executable; 

1 0 c) third enabling communications between said first and second application 

1 1 instances dependent on a mutual security assessment of said first and second 

1 2 application contexts; and 

1 3 d) selectively establishing an encrypted communications channel between 

14 said first and second application instances wherein use of said encrypted 

15 communications channel is enabled by a session key shared between said first 

16 and second application contexts. 

17 21. The method of Claim 20 wherein data, representative of said first and 

18 second application contexts, is communicated to a security server, said method 
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19 further comprising the step of evaluating said data to perform said first, second, 

20 and mutual assessments of said first and second application contexts. 

1 22.. The method of Claim 21 further comprising the step of determining, by 

2 said security server, said session key. 

1 23. The method of Claim 22 further comprising the step of communicating 

2 said session key from said security server to said first and second application 

3 contexts, wherein communications through said encrypted communications 

4 channel are transferred directly, relative to said security server, between said first 

5 and second application contexts. 

1 24. A method of securely binding communications between processes, wherein 

2 application instances, within respective processes, are executed on computer 

3 systems in process execution contexts, said method comprising the steps of: 

4 a) intercepting communications between first and second predetermined 

5 process execution contexts; and 

6 b) encrypting intercepted network communication transmissions and 

7 decrypting intercepted communication receptions utilizing an encryption key 

8 uniquely established based on an evaluation of authorization and authentication 

9 information descriptive of said first and second predetermined process execution 
1 0 contexts. 

1 25. The method of Claim 24 wherein sets of one or more related processes are 

2 executed in process execution contexts, and wherein said step of intercepting 
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3 communications includes the steps of identifying said first and second 

4 predetermined process execution contexts as a unique communication session 

5 and of obtaining a session encryption key specific to said secure communications 

6 session for said network communication. 

1 26. The method of Claim 25 wherein said session encryption key is unique to 

2 said unique communications session. 

1 27. The method of Claim 26 further comprising the step of determining said 

2 session encryption key uniquely in connection with the establishment of said 

3 unique communications session. 

1 28. The method of Claim 27 further comprising the step of requesting, with 

2 respect to said first and second predetermined execution contexts, said session key 

3 from a security server. 

1 29. The method of Claim 28 wherein said security server is an independent 

2 computer system relative to the computer systems providing for the execution of 

3 said first and second process execution contexts, wherein said step of requesting 

4 provides for the transfer of predetermined authorization and authentication 

5 information descriptive of said first and second execution contexts, including 

6 secure identifications of first and second application instances, to said security 

7 server, and wherein said security server performs said step of determining 

8 dependent on said predetermined authorization and authentication information. 
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1 30. A method of securely binding process communications, said method 

2 comprising the steps of: 

3 a) intercepting, on first and second host computer systems, 

4 communications data directed between first and second application instances 

5 executed respectively on said first and second host computers; and 

6 b) transferring the intercepted communications data, in encrypted form, 

7 between said first and second application instances, wherein the intercepted 

8 communications data is encrypted using an encryption key determined specific to 

9 said first and second application instances. 

1 31. The method of Claim 30 wherein said step of intercepting is performed 

2 transparently with respect to said first and second application instances. 

1 32. The method of Claim 31 further comprising the step of requesting said 

2 encryption keyfrom a security server computer system separate from said firstand 

3 second host computer systems, said step of requesting including the steps of 

4 communicating predetermined identification data, including an identification of 

5 said first and second application instances, to said security server computer system 

6 and of selectively receiving said encryption key. 

1 33. The method of Claim 32 further comprising the step of determining, by 

2 said security server computer system, said encryption key specific to said 

3 predetermined identification data. 
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1 34. A system of securing communications between application instances 

2 executable on respective host computer systems, said system comprising: 

3 a) first and second computer systems operable to execute respective 

4 pluralities of application instances; and 

5 b) first and second secure communications modules respectively executable 

6 by said first and second computer systems, said first and second secure 

7 communications modules being operative to identify discrete communications 

8 sessions between specific pairs of application instances among said pluralities of 

9 application instances and establish encrypted communications channels between 

10 said first and second secure communications modules for respective 

1 1 communication sessions. 

1 35. The system of Claim 34 further comprising a security server computer 

2 system operative to provide a distinct session encryption key to said first and 

3 second secure communications modules for respective communication sessions. 

1 36. The system of Claim 35 wherein said security server computer system 

2 includes a policy database, wherein said first and second secure communications 

3 modules are coupleable to said security server computer system to provide 

4 predetermined request data with respect to a predetermined communication 

5 session, wherein said server computer system is operative to evaluate said 

6 predetermined request data against said policy database and selectively return 

7 said distinct session encryption key for said predetermined communication 

8 session. 
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1 37. The system of Claim 36 wherein said predetermined request data includes 

2 first request data including a first identification of a first application instance and 

3 second request data including a second identification of said second application 

4 instance. 

1 38. The system of Claim 37 wherein said first and second identifications are 

2 secure identifications. 

1 39. The system of Claim 38 wherein said predetermined request data identifies 

2 provides user identification, user authentication, and application instance 

3 identification information for said first and second application instances. 

1 40. A system for controlling the execution and mutual communication between 

2 remotely executing programs, said system comprising: 

3 a) a first control program executable by a first computer system 

4 operative, by execution of a first operating system, to support execution of a first 

5 predetermined program, said first control program operative to process first 

6 predetermined data transfers between said first predetermined program and said 

7 first operating system; 

8 b) a second control program executable by a second computer 

9 system operative, by execution of a second operating system, to support execution 

10 of a second predetermined program, said second control program operative to 

1 1 process second predetermined data transfers between said second predetermined 

12 program and said second operating system; and 
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13 c) a security server coupleable to said first and second 

1 4 predetermined programs to selectively enable processing of said first and second 

15 predetermined data transfers dependent on security values evaluated by said 

16 security server with respect to said first and second predetermined programs. 

1 41 . The system of Claim 40 v/herein said first and second control programs are 

2 further respectively operative to provide first and second sets of security values, 

3 corresponding respectively to said first and second predetermined programs, to 

4 said security server. 

1 42. The system of Claim 41 wherein said security server is operative to enable 

2 processing of said first and second predetermined data transfers where said first 

3 and second predetermined data transfers provide for the communication of data 

4 between said first and second predetermined programs dependent on the mutual 

5 evaluation of said first and second sets of security values. 
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